Another night filled with knowledge sharing by MVPs where IT Pro can take away IT knowledge which may help them in their work.

During Session 1 on IPSec & Domain Isolation, MVP Pom Figueroa shared with us his experience in setting up IPSec which made the whole session an enjoyable and easy to understand.

I like the portion where he shared on the best practices during setting up of IPSec and Domain Isolation!

Key pointers like:

Do not configure(apply) IPSec under "Private" or "Public", only for "Domain" unless Company Policy indicates clearly that user is not able to access Internet using company machine anywhere except Office!

Create a new OU for testing out IPSec if one does not have a test environment. Why? The reason is once IPSec rollout wrongly, you may need to go around to everymachine to disable IPSec!!

Creating a policy for Machine to be able to contact all the Domain Controller first before implementing Domain Isolation. If not machines will be disjointed from the domain! OPS…